Today notes are by Harisfazillah Jamel of Malaysia. All about computers and Internet, Open Source FreeBSD and Linux. Today notes blog in Malay and English. HP-UX and SUN are among the operating system I used to work with. Need to know, want to know. We must do our best, because we are the best, going to be the best, best of the best.

The vulnerability exists due to the way MHTML interprets MIME-formatted requests for content blocks within a document. It is possible under certain conditions for this vulnerability to allow an attacker to inject a client-side script in the response of a Web request run in the context of the victim's Internet Explorer. The script could spoof content, disclose information, or take any action that the user could take on the affected Web site on behalf of the targeted user.

An attacker who successfully exploits this vulnerability will be able to execution of arbitrary attacker-supplied script code in the context of Internet Explorer. This may allow the attacker to obtain sensitive information, spoof content, or perform arbitrary actions on a targeted website in the context of the victim.